OAuth 2.0 for Databricks
Configure Alteryx Analytics Cloud (AAC) to integrate with your Databricks workspace using OAuth 2.0 to authenticate.
Prerequisites
Enable Azure Single Sign-On for your workspace.
Set up your workspace with ADLS as Private Data Storage and set the workspace storage directory to
adls
.
Create OAuth 2.0 Microsoft Azure Client App
In the Azure portal, you must create a client app.
Sign in to your Microsoft Azure portal.
Go to App registrations and then select New registration.
Configure the redirect URLs as...
https://{aac_environment}/workspace/azure1/sso/azureCallback
https://{aac_environment}/oauth2/callback
Where
{aac_environment}
is your base AAC URL. For example,us1.alteryxcloud.com
.
Go to Add a certificate or secret and then create a new secret.
Copy the
client id
,secret
, andtenant id
. You will use these later.
Create OAuth 2.0 Client for Databricks in AAC
After you create the Azure client app, you must create an OAuth 2.0 client in AAC. The AAC client app integrates with the OAuth 2.0 Client app that you created in the Azure portal.
Sign in to AAC as a Workspace Admin.
Select the Profile menu > Workspace Admin > OAuth 2.0 Clients.
On the OAuth 2.0 Clients page, select Register OAuth 2.0 client.
Configure these fields for the new client…
From the Type dropdown, select databricks.
Under Name, enter a descriptive name for the client.
Enter the Client ID value you created during the Azure client app setup.
Enter the Client Secret value you created during the Azure client app setup.
Under Authorization URL, enter
https://login.microsoftonline.com/{tenantID}/oauth2/v2.0/authorize
. Replace{tenantID}
with your Azure tenant ID.Under Token URL, enter
https://login.microsoftonline.com/{tenantID}/oauth2/v2.0/token
. Replace{tenantID}
with your Azure tenant ID.Under Scopes, enter
2ff814a6-3304-4ab8-85cb-cd0e6f879c1d/.default offline_access
.Under Access Token Expires In, enter
3599999
.Under Refresh Token Expires In, enter
7775999999
.
Select Create.
For more information, go to Create OAuth2 Client.